Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2015-7871 — Improper Authentication in NTP

CWE-287 — Improper Authentication CWE-305 — Authentication Bypass by Primary Weakness CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-20 — Improper Input Validation CWE-22 — Path Traversal CWE-264 CWE-39933 documents12 sources

Severity

9.8CRITICALNVD

OSV5.3

EPSS

79.6%

top 0.91%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

NTP Debian NTP Debian Linux +1 more

Timeline

PublishedAug 7

Latest updateMay 13

Description

Crypto-NAK packets in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to bypass authentication.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages5 packages

▶NVDntp/ntp4.2.6 — 4.2.8+3

▶debiandebian/ntp< ntp 1:4.2.8p4+dfsg-1 (bullseye)

▶Debianntp/ntp< 1:4.2.8p4+dfsg-1

▶Ubuntuntp/ntp< 1:4.2.6.p5+dfsg-3ubuntu2.14.04.5

▶ciscocisco/products_october_2015

Also affects: Debian Linux 7.0, 8.0, 9.0

🔴Vulnerability Details

GHSA

GHSA-mxc3-mjx4-gjc9: Crypto-NAK packets in ntpd in NTP 4↗2022-05-13

▶

OSV

CVE-2015-7871: Crypto-NAK packets in ntpd in NTP 4↗2017-08-07

▶

OSV

ntp vulnerabilities↗2015-10-27

▶

💥Exploits & PoCs

Metasploit

NTP "NAK to the Future"↗

▶

📋Vendor Advisories

CISA ICS

Siemens TIM 4R-IE Devices↗2021-04-13

▶

CISA ICS

Siemens RUGGEDCOM ROX-based Devices NTP Vulnerabilities↗2018-08-27

▶

CISA ICS

Rockwell Automation Stratix 5900↗2017-05-10

▶

Ubuntu

NTP vulnerabilities↗2015-10-27

▶

BSD

FreeBSD-SA-15:25.ntp: Multiple vulnerabilities of ntp [REVISED]↗2015-10-26

▶

🕵️Threat Intelligence

Talos

Cisco Identifies Multiple Vulnerabilities in Network Time Protocol daemon (ntpd)↗2015-10-21

▶

Talos

Cisco Identifies Multiple Vulnerabilities in Network Time Protocol daemon (ntpd)↗2015-10-21

▶

💬Community

Bugzilla

CVE-2015-7692 CVE-2015-7871 CVE-2015-7852 CVE-2015-7701 CVE-2015-7702 CVE-2015-7691 ntp: various flaws [fedora-all]↗2015-10-22

▶

Bugzilla

CVE-2015-7871 ntp: crypto-NAK symmetric association authentication bypass vulnerability↗2015-10-22

▶